ihatemoney_ynh/budget/web.py

from collections import defaultdict

from flask import (Flask, session, request, redirect, url_for, render_template, 
        flash)
from flaskext.mail import Mail, Message

# local modules
from models import db, Project, Person, Bill
from forms import ProjectForm, AuthenticationForm, BillForm, MemberForm, InviteForm
from utils import get_billform_for, requires_auth

# create the application, initialize stuff
app = Flask(__name__)
app.config.from_object("default_settings")
mail = Mail()

# db
db.init_app(app)
db.app = app
db.create_all()

# mail
mail.init_app(app)


@app.route("/")
def home():
    project_form = ProjectForm()
    auth_form = AuthenticationForm()
    return render_template("home.html", project_form=project_form, 
            auth_form=auth_form, session=session)

@app.route("/authenticate", methods=["GET", "POST"])
def authenticate(redirect_url=None):
    form = AuthenticationForm()
    
    project_id = form.id.data

    redirect_url = redirect_url or url_for("list_bills", project_id=project_id)
    project = Project.query.get(project_id)
    create_project = False # We don't want to create the project by default
    if not project:
        # But if the user try to connect to an unexisting project, we will 
        # propose him a link to the creation form.
        create_project = project_id

    else:
        # if credentials are already in session, redirect
        if project_id in session and project.password == session[project_id]:
            return redirect(redirect_url)

        # else process the form
        if request.method == "POST":
            if form.validate():
                if not form.password.data == project.password:
                    form.errors['password'] = ["The password is not the right one"]
                else:
                    # maintain a list of visited projects
                    if "projects" not in session:
                        session["projects"] = []
                    # add the project on the top of the list
                    session["projects"].insert(0, (project_id, project.name))
                    session[project_id] = form.password.data
                    session.update()
                    return redirect(redirect_url)

    return render_template("authenticate.html", form=form, 
            create_project=create_project)

@app.route("/create", methods=["GET", "POST"])
def create_project():
    form = ProjectForm()
    if request.method == "GET" and 'project_id' in request.values:
        form.name.data = request.values['project_id']

    if request.method == "POST":
        if form.validate():
            # save the object in the db
            project = form.save()
            db.session.add(project)
            db.session.commit()

            # create the session object (authenticate)
            session[project.id] = project.password
            session.update()

            # redirect the user to the next step (invite)
            return redirect(url_for("invite", project_id=project.id))

    return render_template("create_project.html", form=form)

@app.route("/exit")
def exit():
    # delete the session
    session.clear()
    return redirect(url_for("home"))

@app.route("/<string:project_id>/invite", methods=["GET", "POST"])
@requires_auth
def invite(project):

    form = InviteForm()

    if request.method == "POST": 
        if form.validate():
            # send the email

            message_body = render_template("invitation_mail", 
                    email=project.contact_email, project=project)

            message_title = "You have been invited to share your"\
                    + " expenses for %s" % project.name
            msg = Message(message_title, 
                body=message_body, 
                recipients=[email.strip() 
                    for email in form.emails.data.split(",")])
            mail.send(msg)
            return redirect(url_for("list_bills", project_id=project.id))

    return render_template("send_invites.html", form=form, project=project)

@app.route("/<string:project_id>/")
@requires_auth
def list_bills(project):
    bills = Bill.query.join(Person, Project)\
        .filter(Bill.payer_id == Person.id)\
        .filter(Person.project_id == Project.id)\
        .filter(Project.id == project.id)\
        .order_by(Bill.date.desc())
    return render_template("list_bills.html", 
            bills=bills, project=project, 
            member_form=MemberForm(project),
            bill_form=get_billform_for(project)
    )

@app.route("/<string:project_id>/members/add", methods=["GET", "POST"])
@requires_auth
def add_member(project):
    # FIXME manage form errors on the list_bills page
    form = MemberForm(project)
    if request.method == "POST":
        if form.validate():
            db.session.add(Person(name=form.name.data, project=project))
            db.session.commit()
            return redirect(url_for("list_bills", project_id=project.id))
    return render_template("add_member.html", form=form, project=project)

@app.route("/<string:project_id>/members/<int:member_id>/delete", methods=["GET", "POST"])
@requires_auth
def remove_member(project, member_id):
    person = Person.query.get_or_404(member_id)
    if person.project == project:
        if not person.is_used():
            db.session.delete(person)
            db.session.commit()
            flash("User '%s' has been removed" % person.name)
        else:
            person.activated = False
            db.session.commit()
            flash("User '%s' has been desactivated" % person.name)
    return redirect(url_for("list_bills", project_id=project.id))

@app.route("/<string:project_id>/add", methods=["GET", "POST"])
@requires_auth
def add_bill(project):
    form = get_billform_for(project)
    if request.method == 'POST':
        if form.validate():
            db.session.add(form.save())
            db.session.commit()

            flash("The bill have been added")
            return redirect(url_for('list_bills', project_id=project.id))

    return render_template("add_bill.html", form=form, project=project)


@app.route("/<string:project_id>/compute")
@requires_auth
def compute_bills(project):
    """Compute the sum each one have to pay to each other and display it"""
    return render_template("compute_bills.html", project=project)


@app.route("/<string:project_id>/reset")
@requires_auth
def reset_bills(project):
    """Reset the list of bills"""
    # FIXME replace with the archive feature
    # get all the bills which are not processed
    bills = Bill.query.filter(Bill.processed == False)
    for bill in bills:
        bill.processed = True
        db.session.commit()

    return redirect(url_for('list_bills'))


@app.route("/<string:project_id>/delete/<int:bill_id>")
@requires_auth
def delete_bill(project, bill_id):
    Bill.query.filter(Bill.id == bill_id).delete()
    BillOwer.query.filter(BillOwer.bill_id == bill_id).delete()
    db.session.commit()
    flash("the bill was deleted")

    return redirect(url_for('list_bills'))


def main():
    app.run(host="0.0.0.0", debug=True)

if __name__ == '__main__':
    main()
Makes the computation working. 2011-07-31 23:55:18 +02:00			`from collections import defaultdict`

Invite people after project creation. Uses the flask-mail extension. 2011-07-30 15:46:53 +02:00			`from flask import (Flask, session, request, redirect, url_for, render_template,`
			`flash)`
			`from flaskext.mail import Mail, Message`
Split the logic into different python modules: * web.py contains the controllers (also called views) + url definitions * models.py contains the models * forms.py contains the forms * utils.py contains a set of utility fonctions to ease the dev. process 2011-07-23 18:45:40 +02:00
			`# local modules`
			`from models import db, Project, Person, Bill`
Invite people after project creation. Uses the flask-mail extension. 2011-07-30 15:46:53 +02:00			`from forms import ProjectForm, AuthenticationForm, BillForm, MemberForm, InviteForm`
Split the logic into different python modules: * web.py contains the controllers (also called views) + url definitions * models.py contains the models * forms.py contains the forms * utils.py contains a set of utility fonctions to ease the dev. process 2011-07-23 18:45:40 +02:00			`from utils import get_billform_for, requires_auth`

			`# create the application, initialize stuff`
			`app = Flask(__name__)`
Add tests about sending notifications. #7 2011-08-09 19:22:09 +02:00			`app.config.from_object("default_settings")`
Invite people after project creation. Uses the flask-mail extension. 2011-07-30 15:46:53 +02:00			`mail = Mail()`
Split the logic into different python modules: * web.py contains the controllers (also called views) + url definitions * models.py contains the models * forms.py contains the forms * utils.py contains a set of utility fonctions to ease the dev. process 2011-07-23 18:45:40 +02:00
get ready for production, baby :) 2011-08-10 00:53:15 +02:00			`# db`
			`db.init_app(app)`
			`db.app = app`
			`db.create_all()`

			`# mail`
			`mail.init_app(app)`


Homepage created and project authentication refactored 2011-07-29 15:44:15 +02:00			`@app.route("/")`
			`def home():`
			`project_form = ProjectForm()`
			`auth_form = AuthenticationForm()`
List the projects in session into the home page. This allows easier access when people don't remembre the name / url of their projects. 2011-07-31 00:53:12 +02:00			`return render_template("home.html", project_form=project_form,`
			`auth_form=auth_form, session=session)`
Homepage created and project authentication refactored 2011-07-29 15:44:15 +02:00
			`@app.route("/authenticate", methods=["GET", "POST"])`
			`def authenticate(redirect_url=None):`
Split the logic into different python modules: * web.py contains the controllers (also called views) + url definitions * models.py contains the models * forms.py contains the forms * utils.py contains a set of utility fonctions to ease the dev. process 2011-07-23 18:45:40 +02:00			`form = AuthenticationForm()`
Homepage created and project authentication refactored 2011-07-29 15:44:15 +02:00
Put back the old version of authenticate. (Fred, is there a reason why you're using form.id.validate()? Doesn't seem to be defined in here. Also properly deletes the session using session.clear rather than session = None. As session is an observable object, if it is updated to None, the session will not be invalided at the end of the request. Instead, you have to call clear() which will clear its members so the cookie will be updated accordingly at the end of the request. 2011-07-30 01:32:55 +02:00			`project_id = form.id.data`

			`redirect_url = redirect_url or url_for("list_bills", project_id=project_id)`
			`project = Project.query.get(project_id)`
Do not redirect users to the creation form when they are trying to log in. Fixes #9 2011-08-09 17:29:44 +02:00			`create_project = False # We don't want to create the project by default`
Put back the old version of authenticate. (Fred, is there a reason why you're using form.id.validate()? Doesn't seem to be defined in here. Also properly deletes the session using session.clear rather than session = None. As session is an observable object, if it is updated to None, the session will not be invalided at the end of the request. Instead, you have to call clear() which will clear its members so the cookie will be updated accordingly at the end of the request. 2011-07-30 01:32:55 +02:00			`if not project:`
Do not redirect users to the creation form when they are trying to log in. Fixes #9 2011-08-09 17:29:44 +02:00			`# But if the user try to connect to an unexisting project, we will`
			`# propose him a link to the creation form.`
			`create_project = project_id`
Put back the old version of authenticate. (Fred, is there a reason why you're using form.id.validate()? Doesn't seem to be defined in here. Also properly deletes the session using session.clear rather than session = None. As session is an observable object, if it is updated to None, the session will not be invalided at the end of the request. Instead, you have to call clear() which will clear its members so the cookie will be updated accordingly at the end of the request. 2011-07-30 01:32:55 +02:00
fixes authentication (#9) 2011-08-09 19:28:50 +02:00			`else:`
			`# if credentials are already in session, redirect`
			`if project_id in session and project.password == session[project_id]:`
			`return redirect(redirect_url)`

			`# else process the form`
			`if request.method == "POST":`
			`if form.validate():`
			`if not form.password.data == project.password:`
			`form.errors['password'] = ["The password is not the right one"]`
			`else:`
			`# maintain a list of visited projects`
			`if "projects" not in session:`
			`session["projects"] = []`
			`# add the project on the top of the list`
			`session["projects"].insert(0, (project_id, project.name))`
			`session[project_id] = form.password.data`
			`session.update()`
			`return redirect(redirect_url)`
Homepage created and project authentication refactored 2011-07-29 15:44:15 +02:00
Do not redirect users to the creation form when they are trying to log in. Fixes #9 2011-08-09 17:29:44 +02:00			`return render_template("authenticate.html", form=form,`
			`create_project=create_project)`
Project creation. 2011-07-23 19:11:24 +02:00
			`@app.route("/create", methods=["GET", "POST"])`
			`def create_project():`
Check project id before authentication 2011-07-26 16:03:00 +02:00			`form = ProjectForm()`
Project creation. 2011-07-23 19:11:24 +02:00			`if request.method == "GET" and 'project_id' in request.values:`
			`form.name.data = request.values['project_id']`

			`if request.method == "POST":`
			`if form.validate():`
			`# save the object in the db`
			`project = form.save()`
			`db.session.add(project)`
			`db.session.commit()`

			`# create the session object (authenticate)`
			`session[project.id] = project.password`
			`session.update()`

			`# redirect the user to the next step (invite)`
			`return redirect(url_for("invite", project_id=project.id))`

			`return render_template("create_project.html", form=form)`

formatting 2011-08-09 23:48:13 +02:00			`@app.route("/exit")`
			`def exit():`
Homepage created and project authentication refactored 2011-07-29 15:44:15 +02:00			`# delete the session`
Put back the old version of authenticate. (Fred, is there a reason why you're using form.id.validate()? Doesn't seem to be defined in here. Also properly deletes the session using session.clear rather than session = None. As session is an observable object, if it is updated to None, the session will not be invalided at the end of the request. Instead, you have to call clear() which will clear its members so the cookie will be updated accordingly at the end of the request. 2011-07-30 01:32:55 +02:00			`session.clear()`
			`return redirect(url_for("home"))`
Homepage created and project authentication refactored 2011-07-29 15:44:15 +02:00
Invite people after project creation. Uses the flask-mail extension. 2011-07-30 15:46:53 +02:00			`@app.route("/<string:project_id>/invite", methods=["GET", "POST"])`
Project creation. 2011-07-23 19:11:24 +02:00			`@requires_auth`
			`def invite(project):`
Invite people after project creation. Uses the flask-mail extension. 2011-07-30 15:46:53 +02:00
			`form = InviteForm()`

			`if request.method == "POST":`
			`if form.validate():`
			`# send the email`

			`message_body = render_template("invitation_mail",`
			`email=project.contact_email, project=project)`

formatting 2011-08-09 23:48:13 +02:00			`message_title = "You have been invited to share your"\`
			`+ " expenses for %s" % project.name`
Invite people after project creation. Uses the flask-mail extension. 2011-07-30 15:46:53 +02:00			`msg = Message(message_title,`
			`body=message_body,`
formatting 2011-08-09 23:48:13 +02:00			`recipients=[email.strip()`
			`for email in form.emails.data.split(",")])`
Invite people after project creation. Uses the flask-mail extension. 2011-07-30 15:46:53 +02:00			`mail.send(msg)`
			`return redirect(url_for("list_bills", project_id=project.id))`

			`return render_template("send_invites.html", form=form, project=project)`
Project creation. 2011-07-23 19:11:24 +02:00
			`@app.route("/<string:project_id>/")`
			`@requires_auth`
			`def list_bills(project):`
The bills list now only displays the specific bills of the project. 2011-08-09 18:05:55 +02:00			`bills = Bill.query.join(Person, Project)\`
			`.filter(Bill.payer_id == Person.id)\`
			`.filter(Person.project_id == Project.id)\`
			`.filter(Project.id == project.id)\`
			`.order_by(Bill.date.desc())`
Project creation. 2011-07-23 19:11:24 +02:00			`return render_template("list_bills.html",`
Makes the computation working. 2011-07-31 23:55:18 +02:00			`bills=bills, project=project,`
			`member_form=MemberForm(project),`
			`bill_form=get_billform_for(project)`
			`)`
Manage users creation 2011-07-23 20:36:13 +02:00
			`@app.route("/<string:project_id>/members/add", methods=["GET", "POST"])`
			`@requires_auth`
			`def add_member(project):`
			`# FIXME manage form errors on the list_bills page`
			`form = MemberForm(project)`
			`if request.method == "POST":`
			`if form.validate():`
			`db.session.add(Person(name=form.name.data, project=project))`
			`db.session.commit()`
			`return redirect(url_for("list_bills", project_id=project.id))`
			`return render_template("add_member.html", form=form, project=project)`
Split the logic into different python modules: * web.py contains the controllers (also called views) + url definitions * models.py contains the models * forms.py contains the forms * utils.py contains a set of utility fonctions to ease the dev. process 2011-07-23 18:45:40 +02:00
Makes the computation working. 2011-07-31 23:55:18 +02:00			`@app.route("/<string:project_id>/members/<int:member_id>/delete", methods=["GET", "POST"])`
			`@requires_auth`
			`def remove_member(project, member_id):`
			`person = Person.query.get_or_404(member_id)`
			`if person.project == project:`
Users are deleted when no bill is assigned to them. Fixes #5 2011-08-09 19:34:46 +02:00			`if not person.is_used():`
			`db.session.delete(person)`
			`db.session.commit()`
			`flash("User '%s' has been removed" % person.name)`
			`else:`
			`person.activated = False`
			`db.session.commit()`
			`flash("User '%s' has been desactivated" % person.name)`
Makes the computation working. 2011-07-31 23:55:18 +02:00			`return redirect(url_for("list_bills", project_id=project.id))`

Split the logic into different python modules: * web.py contains the controllers (also called views) + url definitions * models.py contains the models * forms.py contains the forms * utils.py contains a set of utility fonctions to ease the dev. process 2011-07-23 18:45:40 +02:00			`@app.route("/<string:project_id>/add", methods=["GET", "POST"])`
			`@requires_auth`
			`def add_bill(project):`
Makes the computation working. 2011-07-31 23:55:18 +02:00			`form = get_billform_for(project)`
Split the logic into different python modules: * web.py contains the controllers (also called views) + url definitions * models.py contains the models * forms.py contains the forms * utils.py contains a set of utility fonctions to ease the dev. process 2011-07-23 18:45:40 +02:00			`if request.method == 'POST':`
			`if form.validate():`
Adding a bill is now working properly 2011-07-31 00:41:28 +02:00			`db.session.add(form.save())`
Split the logic into different python modules: * web.py contains the controllers (also called views) + url definitions * models.py contains the models * forms.py contains the forms * utils.py contains a set of utility fonctions to ease the dev. process 2011-07-23 18:45:40 +02:00			`db.session.commit()`
Adding a bill is now working properly 2011-07-31 00:41:28 +02:00
Split the logic into different python modules: * web.py contains the controllers (also called views) + url definitions * models.py contains the models * forms.py contains the forms * utils.py contains a set of utility fonctions to ease the dev. process 2011-07-23 18:45:40 +02:00			`flash("The bill have been added")`
Adding a bill is now working properly 2011-07-31 00:41:28 +02:00			`return redirect(url_for('list_bills', project_id=project.id))`
Split the logic into different python modules: * web.py contains the controllers (also called views) + url definitions * models.py contains the models * forms.py contains the forms * utils.py contains a set of utility fonctions to ease the dev. process 2011-07-23 18:45:40 +02:00
			`return render_template("add_bill.html", form=form, project=project)`


			`@app.route("/<string:project_id>/compute")`
			`@requires_auth`
			`def compute_bills(project):`
			`"""Compute the sum each one have to pay to each other and display it"""`
Makes the computation working. 2011-07-31 23:55:18 +02:00			`return render_template("compute_bills.html", project=project)`
Split the logic into different python modules: * web.py contains the controllers (also called views) + url definitions * models.py contains the models * forms.py contains the forms * utils.py contains a set of utility fonctions to ease the dev. process 2011-07-23 18:45:40 +02:00

			`@app.route("/<string:project_id>/reset")`
			`@requires_auth`
			`def reset_bills(project):`
			`"""Reset the list of bills"""`
Project creation. 2011-07-23 19:11:24 +02:00			`# FIXME replace with the archive feature`
Split the logic into different python modules: * web.py contains the controllers (also called views) + url definitions * models.py contains the models * forms.py contains the forms * utils.py contains a set of utility fonctions to ease the dev. process 2011-07-23 18:45:40 +02:00			`# get all the bills which are not processed`
			`bills = Bill.query.filter(Bill.processed == False)`
			`for bill in bills:`
			`bill.processed = True`
			`db.session.commit()`

			`return redirect(url_for('list_bills'))`


			`@app.route("/<string:project_id>/delete/<int:bill_id>")`
			`@requires_auth`
			`def delete_bill(project, bill_id):`
			`Bill.query.filter(Bill.id == bill_id).delete()`
			`BillOwer.query.filter(BillOwer.bill_id == bill_id).delete()`
			`db.session.commit()`
			`flash("the bill was deleted")`

			`return redirect(url_for('list_bills'))`


			`def main():`
			`app.run(host="0.0.0.0", debug=True)`

			`if __name__ == '__main__':`
			`main()`